Computer Security
[EN] securityvulns.ru no-pyccku


CVECVE-2015-1157
StatusCandidate
DescriptionCoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service (reboot and messaging disruption) via crafted Unicode text that is not properly handled during display truncation in the Notifications feature, as demonstrated by Arabic characters in (1) an SMS message or (2) a WhatsApp message.
Severity
High
CVSS score7,8
CVSS vector(AV:N/AC:L/Au:N/C:N/I:N/A:C)
PhaseAssigned (29.09.2015)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1157
ReferencesSECTRACK : 1032408
 APPLE : APPLE-SA-2015-06-30-1
 APPLE : APPLE-SA-2015-06-30-2
 MISC : http://9to5mac.com/2015/05/27/how-to-fix-ios-text-...
 CONFIRM : http://support.apple.com/kb/HT204941
 CONFIRM : http://support.apple.com/kb/HT204942
 MISC : http://www.ibtimes.co.uk/apple-ios-bug-sees-messag...
 MISC : http://www.reddit.com/r/apple/comments/37e8c1/mali...
 MISC : http://www.reddit.com/r/apple/comments/37enow/abou...
 MISC : http://www.reddit.com/r/explainlikeimfive/comments...
 MISC : http://zanzebek.com/a-simple-text-message-can-ruin...
 MISC : https://ghostbin.com/paste/zws9m
SecurityVulns:Apple iTunes multiple security vulnerabilities
 Apple Mac OS X / EFI multiple security vulnerabilities
 Apple iOS multiple security vulnerabilities
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod